$ rpki-client -vvf rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft File: tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft (raw, json) Hash identifier: 8Kd/P8jJTzRkg/+THXLoodsSAxt7qpVyWa5EFBPJJm4= Subject key identifier: 8A:40:84:8E:4C:AF:07:79:9F:54:45:94:A0:B2:8E:A9:77:CB:C7:D5 Authority key identifier: B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C Certificate issuer: /CN=A9160C95/serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Certificate serial: 0616 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft Manifest number: 060C Signing time: Tue 16 Sep 2025 23:12:16 +0000 Manifest this update: Tue 16 Sep 2025 23:12:15 +0000 Manifest next update: Tue 23 Sep 2025 23:12:15 +0000 Files and hashes: 1: tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl (hash: 5kDZEa0N6Qa9PjP8Kh5WUabbCkfMINWtI0DfcRcw7RE=) 2: 3C2408105CBF11ECACDFE47BC4F9AE02.roa (hash: 0H9iVWOcGuVvN/MVa3XeV+I+PG+LvrsVTNSfk98zbHw=) 3: B3DED5C6BAC911EB8533B615C4F9AE02.roa (hash: DsgHJydaVuiP2/JOiaGz7+8hzbblvMVmJcBWMtJLoOw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 23:12:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1558 (0x616) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160C95, serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Validity Not Before: Sep 16 23:12:15 2025 GMT Not After : Sep 23 23:12:15 2025 GMT Subject: CN=68c9eecf-25d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:0d:a3:46:88:8e:7d:81:4d:4b:57:7f:c3:eb: 03:3e:84:62:9b:74:72:c3:c7:66:d9:e6:36:02:b7: cc:ce:ca:be:7d:e0:6c:87:1c:0d:54:83:4d:9c:2a: 11:ef:77:ff:ae:e7:5e:a9:b7:ab:3d:c3:e7:38:16: ab:48:7f:85:c6:72:13:bb:cb:c5:62:cd:76:f1:7c: 7d:55:a8:f6:51:2a:cf:78:cb:55:bc:56:40:cc:e9: 5e:d3:a6:46:7a:48:75:59:0a:72:11:b6:07:b2:1a: 82:f8:d9:10:29:67:63:28:23:43:ed:3e:80:66:a9: 76:d9:b4:d9:3e:be:77:d3:f1:04:37:4b:63:71:1b: 30:9a:3f:24:0f:66:c5:6b:13:12:3f:5d:4b:54:5a: 34:85:a8:13:bc:a8:1b:a9:df:eb:39:f9:dd:73:98: 77:d4:4b:de:9f:27:50:7e:d0:30:56:fe:6a:18:74: 58:5e:3b:0e:cf:6c:54:b4:d0:7f:70:5d:eb:52:8b: c4:25:c5:8f:fe:89:5b:95:e8:b6:e1:33:2d:13:3e: 50:c6:f9:15:c3:87:3b:a2:77:ef:e9:8e:1d:56:84: 50:27:d9:eb:89:17:72:29:b1:5c:5d:b4:c4:a1:48: 86:d6:a3:02:db:f9:f5:f8:16:4e:92:73:d3:5c:3f: 47:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:40:84:8E:4C:AF:07:79:9F:54:45:94:A0:B2:8E:A9:77:CB:C7:D5 X509v3 Authority Key Identifier: keyid:B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:a4:f8:96:5a:bf:f2:b1:12:2a:45:c6:28:45:03:fa:29:26: e3:1b:48:71:16:4b:e3:47:c8:c2:6d:1c:3e:6b:4e:ef:30:8f: 16:a2:dd:e3:e1:5a:7d:af:c4:79:ec:c4:c3:04:ab:c0:e5:f6: 17:90:b1:a1:cc:30:6e:61:bb:4b:1e:73:51:1f:a0:2a:f0:29: 6d:bd:01:c6:13:81:54:00:05:55:cb:2e:46:6f:6c:bf:15:fa: a9:24:0f:ce:f7:24:99:cf:db:aa:e2:c2:d4:05:be:f0:02:db: 3a:88:c3:b4:95:73:39:06:ba:9c:60:37:e0:df:93:36:f4:ac: a4:c9:d2:93:77:3f:2b:78:24:37:4f:dd:6f:d8:cf:7a:22:d1: 62:3d:58:ef:8b:c1:0d:31:82:61:5e:ab:55:3a:ed:42:5a:33: a0:8f:6b:99:fc:4d:47:cd:82:f8:71:a9:6d:6b:46:f9:ce:d2: c7:2d:19:87:ad:f8:2f:06:81:4f:b8:0f:62:77:62:f8:80:14: 5d:5a:69:37:51:a1:1d:dc:4c:68:c0:cc:f5:0b:c6:d0:57:9d: 99:d3:9b:18:4f:7e:60:a2:05:df:f3:61:4e:a9:7d:6c:3e:03: cc:cb:72:cc:61:bb:67:7d:22:63:f7:2a:97:85:9b:9a:19:37: 7f:6d:2b:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBDOTUxMTAvBgNVBAUTKEI0OEU0MDczQjgxMEJDRjlDNzk0ODE5QzgwRkRFNzFE NTNGMkRFMkMwHhcNMjUwOTE2MjMxMjE1WhcNMjUwOTIzMjMxMjE1WjAYMRYwFAYD VQQDEw02OGM5ZWVjZi0yNWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Q2jRoiOfYFNS1d/w+sDPoRim3Ryw8dm2eY2ArfMzsq+feBshxwNVINNnCoR 73f/rudeqberPcPnOBarSH+FxnITu8vFYs128Xx9Vaj2USrPeMtVvFZAzOle06ZG ekh1WQpyEbYHshqC+NkQKWdjKCND7T6AZql22bTZPr530/EEN0tjcRswmj8kD2bF axMSP11LVFo0hagTvKgbqd/rOfndc5h31EvenydQftAwVv5qGHRYXjsOz2xUtNB/ cF3rUovEJcWP/olblei24TMtEz5QxvkVw4c7onfv6Y4dVoRQJ9nriRdyKbFcXbTE oUiG1qMC2/n1+BZOknPTXD9HEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIpAhI5M rwd5n1RFlKCyjql3y8fVMB8GA1UdIwQYMBaAFLSOQHO4ELz5x5SBnID95x1T8t4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEM5NS9ERTJGRjFGNEJB QzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQbkhsSUdjZ1AzbkhWUHkz aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJNUFjN2dRdlBuSGxJR2NnUDNuSFZQeTNpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEM5NS9ERTJGRjFGNEJBQzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQ bkhsSUdjZ1AzbkhWUHkzaXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBpPiWWr/ysRIqRcYoRQP6KSbjG0hxFkvjR8jCbRw+a07vMI8Wot3j 4Vp9r8R57MTDBKvA5fYXkLGhzDBuYbtLHnNRH6Aq8CltvQHGE4FUAAVVyy5Gb2y/ FfqpJA/O9ySZz9uq4sLUBb7wAts6iMO0lXM5BrqcYDfg35M29KykydKTdz8reCQ3 T91v2M96ItFiPVjvi8ENMYJhXqtVOu1CWjOgj2uZ/E1HzYL4calta0b5ztLHLRmH rfgvBoFPuA9id2L4gBRdWmk3UaEd3ExowMz1C8bQV52Z05sYT35gogXf82FOqX1s PgPMy3LMYbtnfSJj9yqXhZuaGTd/bSs7 -----END CERTIFICATE-----Generated at Thu Sep 18 20:52:23 2025 by rpki-client